Uncontrolled Search Path Element Vulnerability in Elasticsearch Beats by Elastic
CVE-2025-25011
7HIGH
What is CVE-2025-25011?
The vulnerability stems from improper handling of directory permissions within Elasticsearch Beats, which can result in local privilege escalation. An attacker with local access may exploit this flaw by manipulating directory permissions to execute arbitrary file operations, such as moving or deleting files, potentially achieving SYSTEM-level privileges. This security issue highlights the need for stringent permission controls and regular auditing of directory access settings.
Affected Version(s)
Beats 8.0.0 < 9.1.0